General Information
OPNsense is an open-source, easy-to-use firewall and router based on FreeBSD. It offers most of the features found in expensive commercial firewalls, and often even more.
OPNsense began as a fork of pfSense® and m0n0wall in 2014, with its first official release in January 2015. The project has rapidly evolved while maintaining familiar aspects of both m0n0wall and pfSense. Main goal include security and code quality.
Key features
- Traffic Shaper
- Two-factor authentication
- Captive portal
- Transparent Forward Caching Proxy with blacklist support
- Virtual Private Network (site to site & road warrior, IPsec, OpenVPN и PPTP)
- High Availability & Hardware Failover (with configuration synchronization and state tables)
- Intrusion Detection and Prevention
- Built-in reporting and monitoring tools, including RRD Graphs
- Netflow Exporter
- Network Flow Monitoring
- Plugin Support
- DNS server and DNS forwarder
- DHCP Server и Relay
- Dynamic DNS
- Stateful Firewall
- Detailed control over the state table
- 802.1Q VLAN support
Getting Started
Creating
In order to deploy a virtual machine based on OPNsense, follow these steps:
- Log in to your personal account, click the button Create on the top panel, and select Virtual Server. Choose OPNsense from the list of available Marketplace applications.
- Select the appropriate server configuration, ensuring it meets the minimum requirements: 16 GB of disk space and 1 GB RAM.
-
After creating the virtual machine with OPNsense, you can control it via web interface or SSH using the assigned IP address, login
root
and passwordopnsense
.
It is strongly recommended to change the password for security purposes. There are three ways to do so: in the router console, through the web interface, or by clicking Change Password in your personal account.
Changing the Password in Console
Here is how you can change the password for the root user in the console:
- Connect to the router via SSH and select option 3) Reset the root password and press y to confirm.
- Enter the new password and confirm again.
Changing the Password in web interface